Description
WordPress Plugin Pinterest Automatic Pin is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently take over the website and its database. WordPress Plugin Pinterest Automatic Pin version 4.14.3 is vulnerable; prior versions are also affected.
Remediation
Update to plugin version 4.14.4 or latest
References
https://blog.nintechnet.com/critical-vulnerability-fixed-in-wordpress-pinterest-automatic-plugin/
https://codecanyon.net/item/pinterest-automatic-pin-wordpress-plugin/2203314
Related Vulnerabilities
MySQL CVE-2019-2693 Vulnerability (CVE-2019-2693)
WordPress Plugin Gutenberg Blocks by WordPress Download Manager Cross-Site Scripting (2.1.8)
WordPress Plugin 404 to 301-Redirect, Log and Notify 404 Errors Security Bypass (3.0.1)
WordPress Plugin Portfolio by BestWebSoft Cross-Site Scripting (2.39)
Oracle Database Server CVE-2015-4925 Vulnerability (CVE-2015-4925)